9-11 September 2019
Europe/Lisbon timezone

Security feature parity between GCC and Clang

10 Sep 2019, 11:00
30m
Jade-room-I&II (Corinthia Hotel Lisbon)

Jade-room-I&II

Corinthia Hotel Lisbon

160

Speaker

Kees Cook (Google)

Description

There are many security features common to both GCC and Clang, but there is a growing set of features that are missing from GCC and present in Clang, missing from Clang and present in GCC, or missing in both. This session seeks to enumerate and discuss these areas, with the eye toward finding next steps forward (or at least elevating development priority).

Potential areas of focus:
- LTO (especially link speed)
- forward-edge CFI (software and hardware support)
- backward-edge CFI (software and hardware support)
- stack variable auto-initialization
- caller-saved register wipe on function return
- integer overflow detection
- stack clash protection
- implicit fall-through
- memory tagging

I agree to abide by the anti-harassment policy Yes

Primary author

Kees Cook (Google)

Presentation Materials

Your browser is out of date!

Update your browser to view this website correctly. Update my browser now

×